GitHub user MI-DROZ added a comment to the discussion: Cloudstack doesn't validate the account type and Role during ldapCreateAccount
> [@DaanHoogland](https://github.com/DaanHoogland), similar issue on Discussion > > [#10380](https://github.com/apache/cloudstack/discussions/10380) With this info it seems we should realize accountType is a legacy designation needed for backwards compatibility and became a bit redundant when dynamic roles were introduced. I have suggested a possible override mechanism in [10380](https://github.com/apache/cloudstack/discussions/10380) that may make roleid relevant when the account mapping occurs. In our particular situation linkAccountToLdap is not useful since we don't want users to see other users instances. See https://docs.cloudstack.apache.org/en/latest/adminguide/accounts.html I wonder if you are in the same situation. Even in the documentation they state: "Most installations need not surface the notion of Users; they just have one User per Account." This makes the linkDomainToLdap feature more important when one is using the autoimport method for user creation. GitHub link: https://github.com/apache/cloudstack/discussions/12369#discussioncomment-15416469 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
